Privacy & security

Is my email private? How MailOver protects it

Your email is stored with zero-access AES-256-GCM encryption, so MailOver cannot read your mail and staff cannot open it. Privacy filters skip any sender or keyword you mark private before the AI ever sees it, and we never sell your data or train AI models on your email. You can export or delete everything at any time.

AES-256 zero-access encryption, explained

Your email content and login tokens are encrypted with AES-256-GCM before they are stored, using a key derived just for your account with PBKDF2-SHA256 at 100,000 iterations. We call this zero-access, because it means MailOver cannot read your mail.

Does MailOver train AI on my email?

No. MailOver never trains AI models on your email. Your mail is processed only to build your Action Items, Highlights, and FYIs, kept encrypted at rest, never sold, and never fed back into model training.

Does MailOver move, change, or delete my emails?

MailOver marks an email as read once it has processed it, and only sends or moves a message when you ask. It never deletes or reorganizes your inbox on its own. You can disconnect an account to pause and keep your data, delete a single inbox, or delete your whole MailOver account to erase everything.